IETF Logo Mail Archive

Re: [dispatch] please dispatch draft-bhjl-x509-srv-02.xml

Martin Thomson <martin.thomson@gmail.com> Fri, 22 July 2016 12:50 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5C5E812D192 for <dispatch@ietfa.amsl.com>; Fri, 22 Jul 2016 05:50:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tEYN3WJpTv0J for <dispatch@ietfa.amsl.com>; Fri, 22 Jul 2016 05:50:37 -0700 (PDT)
Received: from mail-qk0-x22e.google.com (mail-qk0-x22e.google.com [IPv6:2607:f8b0:400d:c09::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C41612D75D for <dispatch@ietf.org>; Fri, 22 Jul 2016 05:50:36 -0700 (PDT)
Received: by mail-qk0-x22e.google.com with SMTP id s63so100153216qkb.2 for <dispatch@ietf.org>; Fri, 22 Jul 2016 05:50:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=TjSCkQ5M94N15coV6pEu5tLc7hIvVvmm4P5uYeCwL68=; b=EzZh9J6k49zJP7MOyZySCTGGNmLSB/K/0SwR+7446oJTrar570bu7TtDOLYYfKTm5E Y5RfWo3Ens3vgSTpmAHzLsJ/2aP4BrLQXWW/8h7Z3oEwmW1ljHaH3kGxSk0p3xUH4+I2 nDqzUpEw4GQ3TPYoNud/fc3Zmpmegp5HpkzNQxtGExM8oyl8forJtG9Hkf6SPgiLrluX jvRxcTJCI7qtJgVgMGIO3BttLGEGXBQGfminT6+rPiVBY6//rC6ujtedHpUYHwySjtJO J0pVzgzbnsKuXGRyyLp+IPXbPqk1GVPKdwocJ1pCB1PYdx18twh1Fm9zgquc0H3MXHik xSZg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=TjSCkQ5M94N15coV6pEu5tLc7hIvVvmm4P5uYeCwL68=; b=JXGjG6kDoD53jQtPc5Zgb7f7G8fw3knL7F0js7Tyb74ETFjzRec7pLGpWR6+sLcYwL nuoCZ2PaGVnUxMz1N06N7Kkj1gIlbyQh2T3uyZ/znYh/mqCAhJOkCjNanjjPW4PMY7Pu /LhNk72evLYxL2cTLjaKCbN/qJ3CWiFnc3lJnymSCd5QVq7yy/7aiXWDcd1reKc18iro +jVm50RYcSkCY5La0lV3IxP6pSeVCn66KjzWhgekkJ6LygDBTWhjp/RrolL6s23mTaqo IT1o8Fa7lB9hsQUEcvlUDumGfnLRNfG5jNbHqphZvFiCODlKzQ2WUFxF1+nje2sWzzyd VHWw==
X-Gm-Message-State: AEkooutWbvX+vCnjcVRKF76mjEr8AqdUHKFjIMdR7FhxIoxGkqZvgE2fwGrqRwHg/Wjdyb3rxYerfbzcGqGveg==
X-Received: by 10.55.147.70 with SMTP id v67mr4407185qkd.32.1469191835866; Fri, 22 Jul 2016 05:50:35 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.140.22.146 with HTTP; Fri, 22 Jul 2016 05:50:35 -0700 (PDT)
In-Reply-To: <alpine.OSX.2.11.1607221253020.13624@dhcp-b1bb.meeting.ietf.org>
References: <alpine.OSX.2.11.1607221253020.13624@dhcp-b1bb.meeting.ietf.org>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Fri, 22 Jul 2016 14:50:35 +0200
Message-ID: <CABkgnnXcg_LtaVyrGx0prAhfC-KJkp4a1wgztqwwo1XCROD32A@mail.gmail.com>
To: John R Levine <johnl@taugh.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dispatch/47acTHcuFUOv2-lVSFCGXjekKIc>
Cc: Dispatch WG <dispatch@ietf.org>
Subject: Re: [dispatch] please dispatch draft-bhjl-x509-srv-02.xml
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jul 2016 12:50:39 -0000

On 22 July 2016 at 12:54, John R Levine <johnl@taugh.com> wrote:
> The WG seemed OK with it.  After talking to people who plan to implement it
> I updated the draft with some editing fixes and a longer security section.

I would like to see some thorough review of this work.  AD sponsorship
is not appropriate in my opinion.

Primarily, there needs to be adequate security review.  There are
several big risks that this draft skirts and good review, and maybe
even analysis, of this is important.

The draft appears to violate RFC 7320.  That suggests that wider
review of other areas of this is needed.

v2.23.0 | Report a Bug | By Email